In one embodiment, a gateway device receives, from a centralized broker device, a data-access policy for a given computer network, the data-access policy defining which of one or more accessing entities are granted access to specific elements of data within the given computer network. When the gateway device then receives, from a particular accessing entity, a request for one or more particular elements of data from within the given computer network, it may determine, based on the data-access policy, whether the particular accessing entity has been granted access to each of the one or more particular elements of data of the request. As such, the gateway device may prevent access for the particular accessing entity to any of the one or more particular elements of the data request to which the particular accessing entity has not been granted access.
Legal claims defining the scope of protection, as filed with the USPTO.
2. The method of claim 1, wherein the gateway device receives the one or more elements of data from a data collector in the computer network that collects the one or more elements of data from the endpoint device.
3. The method of claim 1, wherein the broker is external to the computer network.
6. The method of claim 5, wherein the gateway identifies the plurality of elements of data from an asset discovery service that dynamically discovers the endpoint device within the computer network.
7. The method of claim 1, wherein the endpoint device is a sensor.
8. The method of claim 1, wherein the endpoint device is an actuator.
9. The method of claim 1, wherein the gateway device is a router at an edge of the computer network.
11. The apparatus as in claim 10, wherein the gateway device receives the one or more elements of data from a data collector in the computer network that collects the one or more elements of data from the endpoint device.
12. The apparatus as in claim 10, wherein the apparatus is external to the computer network.
15. The apparatus as in claim 14, wherein the gateway identifies the plurality of elements of data from an asset discovery service that dynamically discovers the endpoint device within the computer network.
16. The apparatus as in claim 10, wherein the endpoint device is a sensor.
17. The apparatus as in claim 10, wherein the endpoint device is an actuator.
18. The apparatus as in claim 10, wherein the gateway device is a router at an edge of the computer network.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
June 8, 2020
August 9, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.